CVE-2006-4339 — Improper Input Validation in Openssl

CWE-310 CWE-20 — Improper Input Validation CWE-347 — Improper Verification of Cryptographic Signature CWE-573 — Improper Following of Specification by Caller33 documents11 sources

Severity

5.8MEDIUMNVD

NVD5.0NVD4.3NVD4.0OSV4.3

EPSS

4.5%

top 10.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Thunderbird Openssl Debian Firefox +14 more

Timeline

PublishedSep 5

Latest updateMay 3

Description

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages19 packages

▶debiandebian/openssl< openssl 0.9.8b-3 (bookworm)

▶Debianopenssl/openssl< 0.9.8b-3+3

▶NVDopenssl/openssl0.9.7+34

▶debiandebian/firefox< firefox 1.5.dfsg+1.5.0.7-1 (sid)

▶debiandebian/thunderbird< firefox 1.5.dfsg+1.5.0.7-1 (sid)

Patches

Patch: secunia.com ↗Patch: www.debian.org ↗Patch: www.openssl.org ↗

🔴Vulnerability Details

GHSA

GHSA-q7vf-rjwh-chxv: Mozilla Network Security Service (NSS) library before 3↗2022-05-03

▶

GHSA

GHSA-cw9v-mmf8-gmmr: OpenSSL before 0↗2022-05-03

▶

GHSA

GHSA-fjc3-r8f9-57p5: verify↗2022-05-01

▶

GHSA

GHSA-vv86-x932-f9fc: The libike library, as used by in↗2022-05-01

▶

GHSA

GHSA-f6g8-8p5j-hphv: SSH Tectia Client/Server/Connector 5↗2022-05-01

▶

📋Vendor Advisories

VMware

Several critical security vulnerabilities have been addressed in the newest releases of VMware's hosted product line↗2008-03-17

▶

Cisco

Multiple Vulnerabilities in OpenSSL Library↗2006-11-08

▶

Red Hat

security flaw↗2006-09-15

▶

Red Hat

security flaw↗2006-09-08

▶

BSD

FreeBSD-SA-06:19.openssl: Incorrect PKCS#1 v1.5 padding validation in crypto(3)↗2006-09-06

▶

📐Framework References

CWE

Improper Following of Specification by Caller↗

▶

💬Community

Bugzilla

CVE-2006-4340 security flaw↗2018-08-16

▶

Bugzilla

CVE-2006-4790 security flaw↗2018-08-16

▶

Bugzilla

CVE-2006-4339 openssl signature forgery↗2008-01-29

▶

Bugzilla

CVE-2006-6736 Multiple JRE flaws (CVE-2006-6737 CVE-2006-6745 CVE-2006-6731 CVE-2006-4339)↗2007-02-09

▶

Bugzilla

CVE-2006-6736 Multiple JRE flaws (CVE-2006-6737 CVE-2006-6731 CVE-2006-4339)↗2007-02-02

▶